oval:org.mitre.oval:def:1159

Definition Id: oval:org.mitre.oval:def:1159

Oval ID:	oval:org.mitre.oval:def:1159
Title:	Windows 2000 COM Structured Storage Vulnerability
Description:	Windows 2000, XP, and Server 2003 does not properly "validate the use of memory regions" for COM structured storage files, which allows attackers to execute arbitrary code, aka the "COM Structured Storage Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2005-0047	Version:	7
Platform(s):	Microsoft Windows 2000	Product(s):	COM Internet Services
Definition Synopsis:
Windows 2000 (sp4 or earlier) is installed Windows 2000 is installed AND NOT Win2K/XP/2003 service pack 5 (or later) is installed AND the version of ole32.dll is less than 5.0.2195.7021 AND NOT the patch KB873333 is installed